Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Solved Go to solution

Cloudera Security installation

avatar
author-rank bertbert98
Explorer

Created on ‎09-17-2013 02:49 AM - edited ‎09-16-2022 01:47 AM

I have a recently upgraded cloudera cluster: Cloudera Standard 4.7.0 


I want to implement kerberos security. I don't have a KDC yet.

I found several manuals and it is confusing me.

CHD4-security guide

Security with cloudera manager

 

what is the best guide for implementing security ?

Our cluster has only 3nodes.  I deployed it with ansible, everything is healty

and there is no KDC running beside them.

 

After deploying the kerberos security on the cluster, i would want to deploy sentry.

 

 

Would setting up a KDC on centOS be suffcient?

 

3,053 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
Brian Burton author-rank
Cloudera Employee

Created ‎10-08-2013 11:36 AM

Hi bertbert98,

 

Did you restart the Cloudera Manager services after implementing Security (Kerberos)? After implementing Kerberos, you need to restart the CM services (Activity Monitor, Service Monitor, Host Monitor, etc.). These services are separate from the cluster services, and can be found at the bottom of the main 'Services' page in CM.

 

Thanks,

 

Brian Burton

Customer Operations Engineer

View solution in original post

3,004 Views
3 REPLIES 3

avatar
author-rank Clint author-rank
Guru

Created ‎09-17-2013 11:35 AM

@bertbert98,

 

  I have moved this post to the Cloudera Manager board in case that helps you get more attention.  I do believe it's fine to run a KDC on CentOS, though, that's how I run mine.  The Cloudera Manager doc you referenced is the correct one.

 

Clint

3,042 Views

avatar
author-rank bertbert98
Explorer

Created ‎09-25-2013 04:05 AM

Thank you, it seems to work. But i am having an other problem.

 

Cloudera manager says he can not test if the namenode , the hbase master and the jobtracker are online.

But i can work perfectly with hue & hdfs. 

 

I found that there was en error in cloudera manager and fixed in version 4.0.4 but i am running 4.7.2

3,033 Views
0 Kudos

avatar
Brian Burton author-rank
Cloudera Employee

Created ‎10-08-2013 11:36 AM

Hi bertbert98,

 

Did you restart the Cloudera Manager services after implementing Security (Kerberos)? After implementing Kerberos, you need to restart the CM services (Activity Monitor, Service Monitor, Host Monitor, etc.). These services are separate from the cluster services, and can be found at the bottom of the main 'Services' page in CM.

 

Thanks,

 

Brian Burton

Customer Operations Engineer

3,005 Views
Announcements
What's New @ Cloudera
Cloudera Data Engineering 1.23: Access Spark from Your Favor...
What's New @ Cloudera
HBase REST server scaling support is Generally Available
What's New @ Cloudera
New CLI option in the update-database command
What's New @ Cloudera
New Action menu item in the Cloudera Operational Database UI
What's New @ Cloudera
Get the list of supported instance types in the Cloudera Ope...
View More Announcements